Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
File: xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft (raw, json)
Hash identifier: 2Dn5uzSCxwQj1p+1/e8n1VpatQtHs43puO+uzARf124=
Subject key identifier: C0:61:31:04:6F:48:B8:31:25:52:72:A6:D4:FB:15:92:01:72:3F:06
Authority key identifier: C6:C6:65:3E:87:BB:2E:F9:AD:BB:06:19:60:E2:05:00:A5:54:F0:35
Certificate issuer: /CN=c6c6653e87bb2ef9adbb061960e20500a554f035
Certificate serial: 01962D86407FFF8F40A1EC17D76FF619FEB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsZlPoe7LvmtuwYZYOIFAKVU8DU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
Manifest number: 04B4
Signing time: Sun 13 Apr 2025 05:01:35 +0000
Manifest this update: Sun 13 Apr 2025 05:01:35 +0000
Manifest next update: Mon 14 Apr 2025 05:01:35 +0000
Files and hashes: 1: CL-hnZLAW32dB0McMUvKXumHbjc.roa (hash: /6abOSVtqiSm907QP0eqatEoUJFnqFDpeoJMvvSk4WA=)
2: xsZlPoe7LvmtuwYZYOIFAKVU8DU.crl (hash: UwFKYsNxsGWZn696sDS+N4vM7ORNAJcFVJRtP+OPkn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xsZlPoe7LvmtuwYZYOIFAKVU8DU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2d:86:40:7f:ff:8f:40:a1:ec:17:d7:6f:f6:19:fe:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6c6653e87bb2ef9adbb061960e20500a554f035
Validity
Not Before: Apr 13 05:01:35 2025 GMT
Not After : Apr 14 05:01:35 2025 GMT
Subject: CN=c06131046f48b831255272a6d4fb159201723f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:58:9c:21:c0:b8:2c:98:35:ff:7f:66:4c:aa:
b4:8a:92:d0:cb:e8:78:fc:90:ab:cb:70:e3:0c:0b:
80:11:e7:fa:4a:82:8b:f4:65:38:e8:0b:c9:23:a9:
6a:5f:ef:7b:d2:34:d8:9f:03:04:d6:41:b0:c4:47:
d5:cc:63:3c:42:df:3b:2c:f3:e5:0b:9b:3c:3f:50:
ec:cc:a3:2a:6e:e8:e0:b3:f1:f1:ef:92:9b:4b:36:
e6:ae:63:16:c4:41:ae:a7:d1:6a:fe:c4:e0:8b:09:
fb:4a:58:ea:2e:0d:a7:23:6f:16:4a:ce:52:7d:b7:
a7:6c:24:9c:ab:22:ae:e9:dd:2a:dd:7e:7d:2c:5a:
a7:d1:f6:f1:61:92:b6:fc:63:c9:ee:a3:a5:61:4c:
c8:1c:9d:39:b8:05:f5:cd:7c:67:0a:4b:a2:4e:16:
64:2e:c3:20:1a:f7:3b:37:bb:f9:fb:1f:e2:69:32:
93:36:d0:e0:54:33:bb:62:88:c0:ed:a0:dc:45:33:
5a:d3:29:74:26:80:99:42:1a:b0:83:d7:2c:25:17:
f4:8f:28:a2:cb:3e:e4:55:6a:43:b7:5a:ba:e0:ef:
7c:f3:88:c5:4a:95:cc:9c:e6:1e:87:d9:52:7c:1e:
29:63:40:98:e9:af:e7:09:6b:ce:c3:7c:ee:4f:9f:
41:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:61:31:04:6F:48:B8:31:25:52:72:A6:D4:FB:15:92:01:72:3F:06
X509v3 Authority Key Identifier:
keyid:C6:C6:65:3E:87:BB:2E:F9:AD:BB:06:19:60:E2:05:00:A5:54:F0:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsZlPoe7LvmtuwYZYOIFAKVU8DU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:1e:98:fa:a6:4c:8c:bd:5c:63:b1:44:c8:db:18:57:3f:24:
31:0f:82:70:07:72:57:96:61:fb:25:57:34:d9:ec:fe:81:9b:
55:1e:b1:24:5c:1a:83:15:5d:53:3b:43:72:25:98:d3:23:07:
2e:6f:08:6e:54:51:af:72:d3:1f:f0:4e:a2:bb:84:ad:bc:d6:
ef:05:aa:e6:b6:4a:67:33:7d:f6:f9:a2:43:a1:1a:bf:8a:7f:
4c:55:16:8f:58:bf:37:e2:b1:4b:d2:85:0d:9c:09:6b:19:18:
13:01:d0:f4:2c:ae:c8:b8:63:cd:c0:47:5b:02:3f:19:a9:9e:
cc:20:53:68:7b:b6:e9:d9:e4:4a:6f:dd:63:ec:d5:19:f3:9c:
cd:a8:2c:e2:2f:51:3e:65:2c:d3:48:55:12:fa:cc:fe:29:ce:
e1:f0:08:af:f6:60:7d:04:b1:5c:ff:7a:56:e1:67:5c:58:de:
d0:36:40:b9:b8:14:a4:de:ec:ad:cc:b9:43:c4:05:82:ad:21:
47:10:b8:ee:f5:7f:5e:ba:83:27:ee:4d:83:2c:c5:96:09:73:
42:9f:c5:18:79:d7:2b:6c:fe:05:ed:94:74:76:d6:bb:cb:67:
a6:ed:6b:cb:2c:3b:f9:b3:e6:65:9a:8c:17:1a:e1:2b:6b:67:
40:13:77:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 09:38:38 2025 by rpki-client